 | | 
07-11-2003, 02:50 AM
|
#1 (permalink)
| | Registered User
Join Date: Jul 2003
Posts: 107
| » 
How can I tell if I'm being targeted by hackers?
Zone alarm keeps reporting high rated contacts, and the IPs all start out with 67.168.xx.xx
Is this normal, or does someone keep trying to get into my system?
| 
|  | |
07-11-2003, 02:52 AM
|
#2 (permalink)
| | Registered User
Join Date: May 2003 Location: Idaho
Posts: 1,966
|
What does it say it is? a trojan? You may need to scan your system for viruses/trojans.
__________________
Asus A7N8X Deluxe | AMD AthlonXP 2600+ | 512mb Corsair XMS Extreme DDR
| |
| | |
07-11-2003, 02:56 AM
|
#4 (permalink)
| | Registered User
Join Date: Jul 2003
Posts: 107
|
A virus scan reveals no trojans or viruses.
| |
| | |
07-11-2003, 02:59 AM
|
#5 (permalink)
| | Registered User
Join Date: May 2003 Location: Idaho
Posts: 1,966
|
It's probably just a scan for a trojan...it's a regular thing...I know for a while when I used Zone Alarm I saw a lot of them...I still catch a few in my intrusion detection with Smoothwall.
__________________
Asus A7N8X Deluxe | AMD AthlonXP 2600+ | 512mb Corsair XMS Extreme DDR
| |
| | |
07-23-2003, 09:28 AM
|
#6 (permalink)
| | Registered User
Join Date: Jul 2003 Location: Midwest
Posts: 109
|
If you r running on a win os, u can perform a trace on the ip w/nestat command. I think Linux uses the same command as well, but u might wanna check 2 b sure. By using nestat u should be able 2 find out who the IP belongs 2. If that fails u, u can always use the net by going 2 places like whoisit.com, or (if u know the proper hacks) can find out through google.
Hope that helps.
__________________
"It's not mankind I don't like, it's the people."
| |
| | |
07-23-2003, 02:10 PM
|
#7 (permalink)
| | Registered User
Join Date: Oct 2001 Location: Baltimore, MD
Posts: 1,006
|
Is there software that can just do intrustion dection? I really don't want a firewall per say that arbitrarily blocks scans .. I want scans to happen and then have software which alerts me to the fact. I thought BlackIce used to do this, but I am not sure. I have a hardware router so I feel quasi safe .. but I would like to have some software tracking ip's and such.
Undeadlord
| |
| | |
07-23-2003, 10:34 PM
|
#8 (permalink)
| | Registered User
Join Date: Feb 2003 Location: Da Bronx, NY
Posts: 1,709
|
Build a honeypot
| |
| | |
07-23-2003, 10:45 PM
|
#9 (permalink)
| | Registered User
Join Date: Oct 2001 Location: ~/
Posts: 2,567
|
I believe now, due to the new Super-DMCA bill being passed, a honeypot is illegal, or will be soon  Gotta love that eh. http://www.broadbandreports.com/shownews/27503 http://www.securityfocus.com/infocus/1703
Personally I would reccomend an intrusion detection system. There are several commercial ones. Currently we run snort (free and IMO by far the best, but it is not a windows IDS). I would imagine there is an IDS out there for windows, and I would bet google could dig one up.
| |
| | |
07-23-2003, 11:34 PM
|
#10 (permalink)
| | Registered User
Join Date: Feb 2003 Location: Da Bronx, NY
Posts: 1,709
|
Ok, I just read those honeypot links
day'um......................
Hmm..........very broad language there, the super dmca that is.
only time will tell, although I think most of it will blow up in their faces, hence admendment after admendment, law suit after law suit, counter suits oh my my head is spining need a mountain dew, a red bull and a twinkie or two
| |
| | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is Off
| | | | Most Active Discussions  | | | | |
Recent Discussions | | | | | |
